Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft
File:                     XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json)
Hash identifier:          lpRNipKcz5Ip7orNPmg6pTpqIkZm4yb3wcsMKRWBfXI=
Subject key identifier:   42:21:0C:BC:6E:92:41:E9:59:B6:07:9C:A1:FF:03:EB:EA:D4:B4:E1
Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D
Certificate issuer:       /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D
Certificate serial:       079D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft
Manifest number:          076E
Signing time:             Sat 18 Oct 2025 23:04:58 +0000
Manifest this update:     Sat 18 Oct 2025 23:04:58 +0000
Manifest next update:     Sat 25 Oct 2025 23:04:58 +0000
Files and hashes:         1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: TVRIiKcZaozxxB2SI9nJrP7+mOvmyayJS8Sj3nnMQUU=)
                          2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=)
                          3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=)
                          4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=)
                          5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=)
                          6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=)
                          7: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl
                          rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 23:04:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1949 (0x79d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D
        Validity
            Not Before: Oct 18 23:04:58 2025 GMT
            Not After : Oct 25 23:04:58 2025 GMT
        Subject: CN=68f41d1a-3239
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:42:38:ce:1f:d2:ed:86:01:68:3b:8d:cf:52:
                    7c:13:42:e8:f1:dd:e3:4d:d8:d0:86:f7:40:4b:13:
                    a9:87:a5:f6:a1:7e:a9:d3:1a:94:45:94:b9:fa:0b:
                    b6:de:3a:4f:db:31:11:fc:e8:32:42:46:ef:66:e6:
                    41:84:0d:10:82:7c:bb:d9:d2:88:f3:b1:0a:6a:b6:
                    63:f7:45:cb:9a:3c:af:17:91:a4:ba:83:26:ff:0a:
                    37:68:8e:51:ef:17:a3:79:bb:66:ff:8a:56:c5:b0:
                    a7:85:50:a3:52:d6:84:4b:45:43:44:47:3f:65:0f:
                    56:fd:06:df:9f:e7:66:1a:f8:62:fe:a5:97:96:13:
                    fd:75:83:a1:5a:23:29:09:66:3b:ee:5a:c3:e9:91:
                    9f:20:d5:b8:ee:41:d1:c2:66:85:81:bb:48:50:72:
                    50:a7:ef:26:50:87:4f:7f:7f:0a:c4:f2:9a:1d:75:
                    a3:68:c5:20:3a:09:c9:9d:ce:12:c0:1e:bd:9f:c0:
                    9e:92:92:a9:a0:a6:34:7f:d6:ad:c0:0b:ef:b2:07:
                    21:60:09:ba:5c:3b:89:f3:7d:71:43:08:55:db:0b:
                    ea:e1:94:d2:f7:4e:2a:16:fe:7f:37:38:3c:8b:d9:
                    dd:2b:21:09:31:47:4e:df:c2:9a:28:7d:83:11:86:
                    ce:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:21:0C:BC:6E:92:41:E9:59:B6:07:9C:A1:FF:03:EB:EA:D4:B4:E1
            X509v3 Authority Key Identifier:
                keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:77:5b:bc:3f:05:b9:09:9c:8d:17:b1:ed:39:e2:91:c1:7c:
         a5:ec:6d:f8:ba:5e:5a:f3:13:e8:81:ea:12:25:3d:4a:93:e1:
         4e:d7:6a:13:5d:aa:72:7e:62:71:3a:7b:09:cd:48:eb:31:0e:
         c7:5a:bb:b4:65:32:fe:2f:52:46:07:f5:15:ff:ad:1c:c2:c0:
         97:82:7b:0d:1f:42:64:8a:44:c3:5b:78:4e:f7:13:1c:35:dd:
         43:5d:63:f7:78:ef:37:3e:53:df:59:7b:a0:bf:bb:da:7e:b4:
         53:9e:af:8e:1a:06:df:16:9d:2f:4e:fa:93:fd:52:28:70:2f:
         98:d0:64:a4:be:4d:30:eb:7d:22:b5:4a:f1:f7:57:1e:57:65:
         00:40:e1:5e:4e:51:96:66:47:44:e3:31:56:aa:09:23:26:01:
         08:ab:2e:e3:13:3b:b8:0a:34:09:3c:81:f7:a3:1a:fc:e3:53:
         ec:90:cf:61:96:bd:cd:82:0d:b0:ec:95:42:0e:44:a5:86:02:
         8c:1b:08:d1:67:33:a1:b5:81:35:db:7f:a5:ba:95:a9:ea:36:
         17:fd:67:64:a3:b4:5e:64:3a:18:d6:96:7d:cb:97:92:05:eb:
         aa:83:06:8a:ea:41:a6:01:ac:40:d2:93:cf:d4:0a:58:de:52:
         a2:c4:5f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:05:06 2025 by rpki-client